Privacy Policy

This privacy policy (the "Policy") explains how BIG DG, operating the Rails App brand, collects, uses, stores, shares, and protects your personal data when you use its sites and online services.

By accessing the site https://rails-app.com and all associated features, content, courses, and applications (collectively the "Services"), you acknowledge that you have read this Policy and agree that your personal data will be processed in accordance with it.

The data controller for personal data is BIG DG, a single-member limited liability company under Tunisian law, having its registered office at 5, Rue de Damas, 1002 Bab Bhar, Tunis, Tunisia, operating the Rails App brand.

For any questions regarding this Policy or the protection of your personal data, you can contact the Company at the email address [email protected] or by post at the following address: BIG DG – Rails App Customer Service, 5, Rue de Damas, 1002 Bab Bhar, Tunis, Tunisia.

This Policy applies to all personal data processing carried out by BIG DG within the framework of Rails App Services, whether for simple navigation on the site, account creation, purchase of courses, or use of member areas and associated tools.

It does not apply to processing carried out by third-party sites or services accessible from our Services (e.g., payment providers, social networks, external platforms), for which these third parties remain solely responsible for their own privacy policies.

Personal data processing implemented by BIG DG is carried out in compliance with applicable Tunisian legislation, in particular Organic Law No. 2004-63 of July 27, 2004 relative to the protection of personal data and the rules of the National Authority for the Protection of Personal Data (INPDP).

Where relevant (for example for users residing in the European Union), BIG DG also takes into account the principles of the General Data Protection Regulation (GDPR), particularly regarding individual rights and international data transfers.

BIG DG only collects and processes personal data necessary for the provision and improvement of Rails App Services, as well as for compliance with its legal and contractual obligations. The main categories of data collected may include:

• Identification data: first name, last name, email address, phone number, country of residence, postal address, or other contact details.
• Account data: chosen username, encrypted password, account settings, communication preferences.
• Billing and payment data: information necessary for billing, transaction history, amounts and payment dates; full credit card data is generally processed by the payment provider.
• Service usage data: courses taken, progress, content viewed, connection time, interactions with modules, participation in sessions and communities.
• Technical data: IP address, device identifiers, browser type, operating system, connection and error logs.
• Data from your exchanges: messages sent to support, responses to surveys, reviews, testimonials, content published in community spaces.

• Information you provide directly (account creation, purchase, forms, newsletter, exchanges with support).
• Data collected automatically during your use of the Services (technical data, cookies, navigation statistics).
• Data transmitted by potential partners or service providers (payment, emailing, analytics) when necessary for billing, support, or personalization of Services.

Your personal data is processed for determined, explicit, and legitimate purposes, notably:

• Provision of Services: account creation and management, access to courses, progress tracking, community management.
• Order and payment management: payment processing, billing, management of payment facilities, incident prevention, accounting follow-up.
• Communication and support: responses to your requests, technical or educational assistance, information regarding your purchases and the evolution of Services.
• Service improvement: statistical analysis, audience measurement, optimization of user experience.
• Marketing and prospecting: sending information emails or offers regarding Rails App or BIG DG, in compliance with applicable rules.
• Security and fraud prevention: detection of suspicious activities, management of security incidents.
• Compliance with legal obligations: tax and accounting obligations, response to legitimate requests from authorities.

• Contract execution: account management, provision of courses and services, payment processing, support related to purchases.
• Legitimate interest: improvement of Services, platform security, fraud prevention, customer relationship management.
• Consent: notably for certain marketing operations, certain non-essential cookies, or specific processing subject to consent.
• Legal obligations: retention of certain billing data, response to authority requests, management of individual rights.

The Rails App site and associated Services use cookies and similar technologies to ensure the proper functioning of the platform, measure audience, and where applicable, personalize content or messages.

A cookie is a text file deposited on your terminal when consulting the site, allowing recognition of your browser, remembering your preferences, or tracking certain navigation information.

• Strictly necessary cookies (authentication, session, security).
• Functionality cookies (language, display, preferences).
• Audience measurement and performance cookies.
• Advertising or targeting cookies, where applicable.

You can configure your browser to accept or refuse cookies, potentially impacting certain functionalities. Detailed information is provided in the banner or the dedicated cookies page, when offered.

Personal data collected by BIG DG may be shared, within the limits of what is necessary, with:

• Authorized internal teams at BIG DG (support, technical, educational, billing, marketing).
• Service providers acting on behalf of BIG DG (hosting, emailing, payment, analytics, support, CRM, etc.).
• Commercial or technical partners when necessary for a specific service.
• Competent administrative or judicial authorities when required by law or to defend the rights of BIG DG or third parties.

BIG DG does not sell your personal data to third parties; any sharing for marketing purposes with distinct partners would be subject to prior information and, where applicable, your consent.

Rails App Services may be hosted on servers located in Tunisia or in other countries (for example in the European Union or other jurisdictions), depending on the chosen service providers. When this involves transfers to countries not offering an equivalent level of protection, BIG DG ensures these transfers are framed by appropriate contractual guarantees.

BIG DG retains your personal data for a period not exceeding that necessary for the purposes for which it is processed, plus applicable legal limitation periods.

• Account and purchase data: duration of Service use, then archiving according to legal obligations.
• Navigation and audience measurement data: shorter durations, in accordance with tool recommendations and settings.
• Prospecting data: for the duration of the relationship, then a reasonable additional period subject to your objection.

BIG DG implements reasonable technical and organizational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, disclosure, or unauthorized access (access control, encryption of certain data, etc.).

As no system is completely secure, the security of your data also depends on the precautions you take (strong password, not sharing access, protecting your devices).

Rails App Services are not intended for persons under 16 years of age, unless specifically supervised as provided by BIG DG. The Company does not knowingly collect data from minors without appropriate authorization and will delete any data identified as such as soon as possible.

In accordance with Tunisian law and, where applicable, GDPR principles, you have various rights:

• Right of access, rectification, and erasure (within legal limits).
• Right to object, particularly to commercial prospecting.
• Right to restriction of certain processing.
• Right to portability in cases provided for by texts.

You can exercise these rights by contacting BIG DG at [email protected] or via any other means indicated on the site, specifying your identity and the nature of your request. In case of unresolved difficulty, you can seize the INPDP or any competent authority.

You may receive emails or notifications necessary for the provision of Services (order confirmation, account information, technical alerts, important updates), as well as marketing communications or newsletters depending on your choices. You can unsubscribe at any time via the unsubscribe link or by contacting us.

BIG DG reserves the right to modify this Policy to adapt it to legal, regulatory, technical, or organizational developments as well as changes to its Services. In case of substantial modification, users will be informed by appropriate means and the new version will apply on the date indicated.

For any question or request relating to this Policy or how BIG DG processes your personal data, you can contact us:

By email: [email protected]
By post: BIG DG – Rails App Customer Service, 5, Rue de Damas, 1002 Bab Bhar, Tunis, Tunisia.